Lucene search
K

14 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/03/21 5:41 p.m.48 views

Security Bulletin: Security vulnerabilities have been identified in IBM DB2 used by IBM Security Verify Governance, Identity Manager virtual appliance component

Summary Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions ---|--- IBM Security Verify...

7.5CVSS7.1AI score0.09149EPSS
Exploits1Affected Software1
CNNVD
CNNVD
added 2022/08/30 12:0 a.m.3 views

IBM Security Identity Manager 输入验证错误漏洞

IBM Security Identity Manager ISIM is a suite of identity management and governance solutions from IBM of America. The solution automates the creation, modification, re-authentication and termination of user privileges throughout the user lifecycle and supports policy-based password management. I...

6.8CVSS6.6AI score0.00406EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/18 4:42 p.m.122 views

Security Bulletin: Security vulnerabilities have been identified in IBM DB2 used by IBM Security Verify Governance, Identity Manager virtual appliance component

Summary Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions ---|--- IBM Security Verify...

7.5CVSS7AI score0.01453EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/03/23 7:35 p.m.27 views

Security Bulletin:IBM SDK, Java Technology Edition Quarterly CPU - Oct 2021 affects IBM Security Verify Governance, Identity Manager virtual appliance component

Summary Vulnerability in IBM® Java™ SDK Technology Edition Quarterly CPU - Oct 2021 , used by IBM Security Verify Governance, Identity Manager virtual appliance component. IBM Security Verify Governance, Identity Manager virtual appliance component has addressed the applicable CVE. Vulnerability...

5.3CVSS5.5AI score0.06218EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/11/11 12:0 a.m.6 views

The vulnerability of the Password Synchronization Plug-in of the IBM Security Identity Manager allows a perpetrator to modify the passwords of other users.

The vulnerability of the Password Synchronization Plug-in of the IBM Security Identity Manager relates to deficiencies in the segmentation of the controlled system area. Exploiting this vulnerability could allow an intruder operating remotely to gain unauthorized access to protected information...

3.5CVSS6.4AI score0.00913EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2021/06/28 4:15 p.m.0 views

CVE-2021-20494

IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a heap based buffer overflow, caused by improper bounds. An authenticared user could overflow the buffer and cause the service to crash. IBM X-Force ID: 197882...

6.5CVSS7AI score
Exploits0References2
OSV
OSV
added 2021/06/28 4:15 p.m.2 views

CVE-2021-20574

IBM Security Identity Manager Adapters 6.0 and 7.0 could allow a remote authenticated attacker to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability and takeover other accounts. IBM X-Force ID: 199252...

8.8CVSS7.1AI score0.01722EPSS
Exploits0References2
OSV
OSV
added 2021/05/20 3:15 p.m.2 views

CVE-2021-29686

IBM Security Identity Manager 7.0.2 could allow an authenticated user to bypass security and perform actions that they should not have access to. IBM X-Force ID: 200015...

8.8CVSS5.8AI score0.00787EPSS
Exploits0References2
OSV
OSV
added 2020/02/04 5:15 p.m.3 views

CVE-2019-4451

IBM Security Identity Manager 6.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 163493...

5.4CVSS5.7AI score0.00561EPSS
Exploits0References2
OSV
OSV
added 2019/07/11 8:15 p.m.2 views

CVE-2018-1968

IBM Security Identity Manager 7.0.1 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 153749...

5.3CVSS5.8AI score0.01301EPSS
Exploits0References2
OSV
OSV
added 2019/01/14 2:29 p.m.2 views

CVE-2018-1967

IBM Security Identity Manager 6.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 153748...

6.1CVSS5.4AI score0.01325EPSS
Exploits0References3
OSV
OSV
added 2017/02/01 10:59 p.m.2 views

CVE-2016-9704

IBM Security Identity Manager Virtual Appliance is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.1CVSS5.4AI score0.00961EPSS
Exploits0References3
OSV
OSV
added 2017/02/01 10:59 p.m.4 views

CVE-2016-9703

IBM Security Identity Manager Virtual Appliance does not invalidate session tokens which could allow an unauthorized user with physical access to the work station to obtain sensitive information...

2.4CVSS5.8AI score0.00346EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2016/11/24 7:59 p.m.1 views

CVE-2016-2996

IBM Security Privileged Identity Manager 2.0 before 2.0.2 FP8, when Virtual Appliance is used, allows remote authenticated users to append to arbitrary files via unspecified vectors...

6.5CVSS5.8AI score0.00875EPSS
Exploits0References2
Rows per page
Query Builder